Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / sap

sap

1,568 tracked vulnerabilities.

CVE-2018-2445 CRITICAL

SAP BusinessObjects Business Intelligence 4.1, 4.2 - Server-Side Request Forgery

CVE-2018-2444 MEDIUM

SAP BusinessObjects Financial Consolidation 10.0 10.1 - Cross-Site Scripting

CVE-2018-2442 HIGH

SAP BusinessObjects Business Intelligence 4.0-4.2 - Cross-Site Request Forgery

CVE-2018-2441 MEDIUM

SAP Kernel 7.21-7.22, 7.21EXT-7.22EXT, 7.45, 7.49, 7.53, 7.73 - Information Disclosure in Change and Transport System

CVE-2018-2440 MEDIUM

SAP Dynamic Authorization Management - Sensitive Information Exposure in Application Logs

CVE-2018-2439 MEDIUM

SAP Internet Graphics Server 7.20, 7.20EXT, 7.45, 7.49, 7.53 - Denial of Service via Malformed Data Packet

CVE-2018-2438 HIGH

SAP Internet Graphics Server 7.20 7.20EXT 7.45 7.49 7.53 - Denial of Service

CVE-2018-2437 CRITICAL

SAP Internet Graphics Service 7.20 7.20EXT 7.45 7.49 7.53 - Remote Code Execution

CVE-2018-2436 HIGH

SAP R/3 Enterprise Retail - Missing Authorization in WRCK Transaction

CVE-2018-2435 MEDIUM

SAP NetWeaver Enterprise Portal 7.0-7.02, 7.11, 7.20, 7.30, 7.31, 7.40, 7.50 - Cross-Site Scripting

CVE-2018-2434 MEDIUM

SAP NetWeaver UI Add-on and SAP UI Implementation - Content Spoofing via HTML Page Rendering

CVE-2018-2433 HIGH

SAP Kernel 7.21-7.22, 7.21EXT-7.22EXT, 7.45, 7.49, 7.53 - Denial of Service

CVE-2018-2432 MEDIUM

SAP BusinessObjects Business Intelligence 4.10-4.30 - Cross-Site Scripting via HTTP Response Header

CVE-2018-2431 MEDIUM

SAP BusinessObjects Business Intelligence Suite 4.10 and 4.20 - Cross-Site Scripting

CVE-2018-2427 HIGH

SAP BusinessObjects Business Intelligence Suite 4.10-4.20 - Code Injection

CVE-2018-2428 MEDIUM

SAP UI5 Handler - Information Disclosure

CVE-2018-2425 HIGH

SAP Business One <9.3 - Info Disclosure

CVE-2018-2424 CRITICAL

SAP UI5 - Cross-Site Scripting via DOM Injection

CVE-2018-11415 MEDIUM

SAP Internet Transaction Server 6200.X.X - Reflected Cross-Site Scripting via wgate URIs

CVE-2018-2423 MEDIUM

SAP Internet Graphics Server 7.20 7.20EXT 7.45 7.49 7.53 - Denial of Service

CVE-2018-2422 MEDIUM

SAP Internet Graphics Server 7.20, 7.20EXT, 7.45, 7.49, 7.53 - Denial of Service

CVE-2018-2421 MEDIUM

SAP Internet Graphics Server 7.20 7.20EXT 7.45 7.49 7.53 - Denial of Service via Portwatcher

CVE-2018-2420 MEDIUM

SAP Internet Graphics Server 7.20 7.20EXT 7.45 7.49 7.53 - Unrestricted Upload of File with Dangerous Type

CVE-2018-2419 LOW

SAP Enterprise Financial Services - Missing Authorization

CVE-2018-2418 MEDIUM

SAP MaxDB ODBC Driver < 7.9.09.07 - Code Injection

Previous Page 45 of 63 Next

Products

3d_visual_enterprise_viewer 131 netweaver 102 netweaver_application_server_abap 78 businessobjects_business_intelligence_platform 73 netweaver_application_server_java 68 businessobjects_business_intelligence 45 hana 38 solution_manager 33 business_one 31 internet_graphics_server 28 3d_visual_enterprise_author 27 businessobjects 23 netweaver_abap 21 netweaver_process_integration 21 netweaver_enterprise_portal 20 business_objects_business_intelligence_platform 18 commerce_cloud 18 hana_extended_application_services 18 sap_basis 18 s\/4hana 17 disclosure_management 16 host_agent 15 adaptive_server_enterprise 14 enable_now 14 s4core 13 abap_platform 12 customer_relationship_management_webclient_ui 12 netweaver_as_abap 12 sap_db 12 sap_kernel 11

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy